Libssh-Scanner is a python based script to identify hosts vulnerable to CVE-2018-10933. Libssh scanner has two modes: passive (banner grabbing) and aggressive (bypass auth) to validate vulnerability’s existence. By default, libssh scanner uses passive mode but supply the -a argument and aggressive mode will be used which provides more accurate results.

Libssh-Scanner Installation

Run pip install -r requirements.txt within the cloned libssh-scanner directory.

Help

libssh Scanner - Find vulnerable libssh services by Leap Security (@LeapSecurity)positional arguments:target An ip address or new line delimited file containingIPs to search for the vulnerability.optional arguments:-h, --help show this help message and exit-v, --version show program's version number and exit-p PORT, --port PORT Set port of SSH service-a, --aggressive Identify vulnerable hosts by bypassing authentication